Daily Ruleset Update Summary
Daily Ruleset Update Summary 2018/07/19

[***]            Summary:            [***]

7 new Open, 30 new Pro (7 + 23). Win32/Banload, Hancitor, Various Phish, Mobile.

[+++]          Added rules:          [+++]

Open:

2025863 - ET CURRENT_EVENTS Possible Successful Generic Phish (set) 2018-07-19 (current_events.rules)
2025864 - ET CURRENT_EVENTS Successful Generic Phish (set) 2018-07-19 (current_events.rules)
2025865 - ET WEB_SPECIFIC_APPS ELF file magic encoded Base64 Hex Escape Inbound Web Servers Likely Command Execution 8 (web_specific_apps.rules)
2025866 - ET WEB_SPECIFIC_APPS ELF file magic encoded Base64 Hex Escape Inbound Web Servers Likely Command Execution 9 (web_specific_apps.rules)
2025867 - ET WEB_SPECIFIC_APPS ELF file magic encoded Base64 Hex Escape Inbound Web Servers Likely Command Execution 10 (web_specific_apps.rules)
2025868 - ET WEB_SPECIFIC_APPS ELF file magic plain Inbound Web Servers Likely Command Execution 11 (web_specific_apps.rules)
2025869 - ET WEB_SPECIFIC_APPS ELF file magic plain Inbound Web Servers Likely Command Execution 12 (web_specific_apps.rules)

Pro:

2831882 - ETPRO CURRENT_EVENTS Badoo Phishing Landing 2018-07-19 (current_events.rules)
2831883 - ETPRO CURRENT_EVENTS GitLab Phishing Landing 2018-07-19 (current_events.rules)
2831884 - ETPRO CURRENT_EVENTS Fake 404 With Hidden Login Form (current_events.rules)
2831885 - ETPRO CURRENT_EVENTS Github Phishing Landing 2018-07-19 (current_events.rules)
2831886 - ETPRO CURRENT_EVENTS Twitter Phishing Landing 2018-07-19 (current_events.rules)
2831887 - ETPRO MOBILE_MALWARE AndroidOS/Trojan.WXZM-2 Checkin (mobile_malware.rules)
2831888 - ETPRO MOBILE_MALWARE Android/Agent-MJK CnC Beacon (mobile_malware.rules)
2831889 - ETPRO MOBILE_MALWARE Android/TrojanDropper.Agent.CCT CnC Beacon (mobile_malware.rules)
2831890 - ETPRO TROJAN Win32/Banload CnC Sending Config Details (trojan.rules)
2831891 - ETPRO CURRENT_EVENTS Hancitor Encrypted Payload Jul 19 (current_events.rules)
2831892 - ETPRO CURRENT_EVENTS Successful Netflix Phish 2018-07-19 (current_events.rules)
2831893 - ETPRO MOBILE_MALWARE Android.Trojan.HiddenAds.WL CnC Beacon (mobile_malware.rules)
2831894 - ETPRO MOBILE_MALWARE Android/Spy.Agent.ANM CnC Beacon (mobile_malware.rules)
2831895 - ETPRO CURRENT_EVENTS Successful Adobe PDF Phish 2018-07-19 (current_events.rules)
2831896 - ETPRO TROJAN Trojan.Redaman CnC Beacon (trojan.rules)
2831897 - ETPRO TROJAN Ursnif Variant CnC Beacon 7 (trojan.rules)
2831898 - ETPRO CURRENT_EVENTS Successful Paypal Phish 2018-07-19 (current_events.rules)
2831899 - ETPRO CURRENT_EVENTS Observed Malicious SSL Cert (MalDoc DL 2018-07-19) (current_events.rules)
2831900 - ETPRO TROJAN Win32.Blackv Dropper Checkin (trojan.rules)
2831901 - ETPRO TROJAN Win32/Unk.BrowserStealer M2 (trojan.rules)
2831902 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-07-19 1) (trojan.rules)
2831903 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-07-19 2) (trojan.rules)
2831904 - ETPRO TROJAN CoinMiner Known Malicious Stratum Authline (2018-07-19 3) (trojan.rules)

[///]     Modified active rules:     [///]

2830216 - ETPRO CURRENT_EVENTS Successful Generic Window.Location Phish 2018-04-02 (current_events.rules)
2830446 - ETPRO TROJAN MSIL/Eredel Stealer CnC Checkin (trojan.rules)
2831878 - ETPRO TROJAN MSIL/Unk.BrowserStealer CnC Exfil (trojan.rules)

Date:
Summary title:
7 new Open, 30 new Pro (7 + 23). Win32/Banload, Hancitor, Various Phish, Mobile.